• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

AIM using port 53 to connect to service

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 Cache] >> Web Proxy Client >> AIM using port 53 to connect to service Page: [1]
Login
Message << Older Topic   Newer Topic >>
AIM using port 53 to connect to service - 15.Oct.2003 7:37:00 PM   
deyster

 

Posts: 84
Joined: 8.Jan.2002
From: Pennsylvania
Status: offline
I found out some people are using AIM and it's going out over port 53. It shows in my web proxy log as a ssl-tunnel and is coming from an anonymous user. I have authentication configured, but I do not use "ask unathenticated users for blah blah blah." I configured a site and content rule to not allow anyone to go to login.oscar.aol.com and I created to protocol filters to not allow anyone to connect to port 53 on outbound tcp.

I am running a copy of aim on a test box and I can still connect. I read through Tom's article and made a couple of changes that can help if you only use the web proxy client and not a firewall client. Going to the firewall client is NOT an option for us.

I know port 53 is DNS and don't want to block that. Is there anyway to block anyone going to login.oscar.aol.com on port 53 without screwing up DNS.

EDIT: It seems that these people are completely bypassing our ISA server also.

TIA for your help.

Dan

[ October 15, 2003, 07:43 PM: Message edited by: deyster ]
Post #: 1
RE: AIM using port 53 to connect to service - 27.Oct.2003 5:57:00 PM   
sniper

 

Posts: 687
Joined: 9.Aug.2001
From: OK, USA
Status: offline
deyster,

Have you tried making a destination set that will restrict the connection. Other option is resove the host to an IP address or range and block TCP connections to it

(in reply to deyster)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 Cache] >> Web Proxy Client >> AIM using port 53 to connect to service Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts